Fortinet FortiGate Reviews

My use case for Fortinet FortiGate involves different plans and consulting in the retail area, and I utilize it in various press scenarios. 

The configuration possibilities that Fortinet FortiGate provides are extensive, and the task configuration activity is fast and efficient for me. My group in the office has ten years of experience with Fortinet FortiGate, and we utilize AI services that help with problem-solving. EER represents a ten-year experience, and we have certified five people in Fortinet FortiGate.

I don't know how Fortinet FortiGate can be improved; I find it comfortable and appreciate it as it is.

I have used the Fortinet FortiGate solution for three years and a different firewall for more than ten years.

Stability is important, and I can be contacted via email for further details.

My experience with the SD WAN capabilities includes working with more than one company, including a small company and a big company with users ranging from twenty to nine hundred. The users can see the tracking.

I rate the support of Fortinet as internal departmental support, which helps me, although I have no other experience.

The pricing for Fortinet FortiGate is good; it's a competitive price.

I find Fortinet FortiGate preferable over Cisco for firewall solutions. Fortinet FortiGate works well for me, while Cisco does not work for me anymore.

I am the chief of the technical department and provide support. I rate Fortinet FortiGate a ten out of ten.

We used the solution for the client environment.

The solution is easy to use and checks the access control as a firewall. We did not face any challenges while integrating the solution into our infrastructure. Fortinet FortiGate SWG is easy to use.

Fortinet FortiGate SWG can't be used on its own, and you have to get FortiAnalyzer.

I have been using Fortinet FortiGate SWG for three years.

Fortinet FortiGate SWG is a very stable solution.

Fortinet FortiGate SWG is a scalable solution.

The solution's initial setup is simple once you get a hang of it. All the documentation is available to help with the setup.

Overall, I rate the solution a nine out of ten.

We use the solution for a large government customer. We helped them migrate from Check Point to Fortinet FortiGate. The customer had a lot of applications that are accessed by HTTPS. It was necessary to put some protection in place to prevent certain internet access. They have a reverse proxy published behind FortiGate. The reverse proxy balances the servers.

FortiGate uses IPS profiles for the reverse proxy. The operation system is Linux, and the server is Apache with HTTPS of medium, high, and critical severity. FortiGate is used to inspect the connections between the servers and the customers. It is used to protect the environment.

We use .NET services to block IPs. We use the tool’s features to prevent access to classified IP addresses. We use ISDB to prevent network access to malware, botnet, BitTorrent networks, and mining for cryptocurrencies.

We prevent access to certain classified addresses to stop attackers from understanding our environment. Attackers try to study the environment to explore its vulnerabilities and attack us. The solution protects the environment from internal and external threats.

Our customers have a specific application for two-way inspection. Two-way inspections are not possible in FortiGate. It is usually available in load-balancing solutions like F5. It would be a good improvement if the product provides two-way inspection features in the next release.

I have been using the solution for five years.

The support is good. We need to raise specific tickets for specific problems. If we have any issues, the team helps us solve them.

Positive

It is easy to deploy the solution. The configuration of the firewall is simple.

The protection of the customers’ networks is our return on investment. The integration with FortiAnalyzer allows us to see the traffic and perform troubleshooting. Creating a profile with IPS does not require many steps. The level of protection provided by the tool is better than other vendors.

Fortinet FortiGate is better compared to Check Point.

Overall, I rate the product a nine out of ten.

I work with multiple customers. Most are comfortable running IPS within their firewalls rather than deploying it. The standard deployment requires finding a service owner and training them on the platform. However, if I deploy a next-generation firewall with integrated IPS and VPN capabilities, it simplifies things. It's straightforward for someone to manage. Consolidating a VPN server, IPS, and standalone firewall into one appliance can be challenging for many customers. Fortinet's servers are increasingly popular.

Fortinet has serious vulnerabilities. Some of their interfaces are exposed to attacks. Since they are more prevalent, they may attract more attacks and have more vulnerabilities discovered.

If I'm incorporating FortiGate IPS, FortiGate firewall, Forti VPN server, or any other component into an existing Fortinet fabric, I already have a Fortinet analyzer and FortiManager. With this integrated Fortinet ecosystem, stability issues are significantly reduced. Additionally, inserting a standalone Fortinet device is much easier and much more accessible.

Customer support is fine and fairly responsive.

Neutral

We used Cisco products and operated within a Cisco ecosystem. Currently, Cisco is too expensive, but FortiGate IPS does not position itself as premium like Cisco.

The initial setup can be completed within a month with some IT security architecture by replacing IPS.

The product is expensive but comparable to Cisco.

There are limitations to consider, such as the sandbox capacity. Increasing the sandbox limit is essential for better integration with the firewall IPS, facilitating traffic offloading. Since my customers deal with heavy content, we often need to upload content for analysis by the IPS and sandbox. Thus, the system effectively fulfils its intended purpose. However, we do not need to assess features beyond what the customer requires. As long as we meet their specific needs and use case, it's satisfactory.

We're building a network of partners, you know, offering competitive pricing to engage in significant projects. Firewalls are pretty standard. The ecosystem issues may revolve around business support and pricing.

You need more considerable internal resources to manage it. For clients with a robust security solutions team, architects, and skilled developers who handle data and generate similar content, I would recommend Fortinet FortiGate IPS. These individuals should be capable of upgrading their packages and downloading them. If they are comfortable with Docker, they can deploy it as an appliance on a server.

Overall, I rate the solution a six out of ten.

Our standard practice involves tailoring deployments to meet specific customer needs. Typically implemented at the network edge, FortiGate SWG addresses diverse security requirements. Use cases include securing online services, protecting internal servers in a DMZ for LAN user access, and employing a segmented approach where different firewalls safeguard distinct zones, collaborating to manage and pass traffic for unique security needs. One of the firewalls also serves as the primary filter for internet traffic.

Web filters, particularly web application controls, grant us the ability to regulate user access effectively. Among the various features, I find web application control and IPS to be the most valuable.

There's room for improvement in the interface, especially following their upgrade to version nineteen. The issue arises from the increased complexity, where tasks like defining the NAS require navigating a separate window, and regular policy configurations are done in a different window.

I have been using it for seven years.

I would rate its stability capabilities nine out of ten.

Regarding scalability, I would rate Fortinet highly, giving them eight out of ten due to the effectiveness of their new hardware, which greatly enhances scalability. We've carried out installations for a variety of setups, spanning from small to medium-sized deployments.

I would rate its technical support services seven out of ten.

Neutral

WatchGuard deserves credit for offering multiple options, including a client base and a comprehensive reporting feature, all within a unified license and toolset.

I would rate the initial setup six out of ten in terms of complexity.

The deployment can take up to a week but typically can be done in a couple of days.

We essentially customize implementations based on the customer's chosen appliance. The cost varies depending on the specific appliance they purchase. We provide coverage for whatever they acquire, and throughout the year, we pay different amounts to various vendors. The cost has increased since the update so I would rate it eight out of ten.

In terms of reliability and security, FortiGate stands out. WatchGuard excels in additional features, offering the best reporting and various configuration options. While Sophos is also strong in security, I would rate it slightly lower than FortiGate. Overall, I would rate it nine out of ten.

We use Fortinet FortiGate SWG to secure both Internet-facing and internal applications.

The web solutions are the most important features.

The solution could add API protection.

I have been using Fortinet FortiGate SWG for a year.

The product is stable.

The solution is scalable.

Support is good.

Positive

The deployment depends on the requirements. It takes a minimum of one day to complete.

The initial setup is managed by a partner.

Three to four people are enough for setup, depending on the tools. You need a network engineer, a partner, and a firewall engineer to install.

The product is expensive. It comes with a yearly subscription, which includes support and everything.

Maintenance is easy. One person is enough to do the regular maintenance, but two are suitable for feasibility.

The product is good. It does the job of what is said. It is very stable and reliable. One should consider based on the POC and their requirement, but for our requirement, FortiGate was the one to go for.

We use it for Internet-facing applications and web-based applications. We use it more as a web solution. There might be other use cases or other requirements for other companies.

Overall, I rate the solution a seven out of ten.

We use the product as a network service for our customers.

The product's most valuable features are SD-WAN and the integration of WiFi and switches.

It is complicated to manage different kinds of on-premise boxes.

We have been using Fortinet FortiGate SWG for nine years. At present, we are using the latest version.

I rate Fortinet FortiGate SWG's stability a ten out of ten.

We have around 3000 Fortinet FortiGate SWG end users, including small and medium businesses. I rate its scalability a nine out of ten.

I rate the initial setup process a three out of ten. It takes two hours to complete.

I implemented the product myself.

I rate the product's pricing a seven out of ten. The additional cost depends on the extra feature requirements.

Fortinet FortiGate SWG is easy to set up and combine with switches and WiFi networks of appliances. I rate it a nine out of ten.

The product has the most valuable configuration, offloading, and security features.

Fortinet FortiGate SWG's SSL offloading features need improvement.

We have been using Fortinet FortiGate SWG for five years.

I recommend Fortinet FortiGate SWG to larger companies as the lease line is expensive. It is suitable for companies who are running web applications. It is not a necessity for small businesses.

The product's tier-one support process is time-consuming. It takes time to reach the right person to sort out the issues.

Neutral

I have previously worked with a product related to SSL offloading and caching through a reverse proxy. Currently, we are serving the small and medium-sized business (SMB) segment, where the requirements and infrastructure may not necessitate SSL offloading and related features due to the absence of web servers within their networks. Simpler and more streamlined solutions suffice for their requirements in such cases.

The initial setup process is easy. It takes two or three hours for basic implementation. At the same time, it takes around two days to perform a clone test. It includes fine-tuning, optimizing, and transforming it to the environment once stabilized.

The product is expensive.

I rate Fortinet FortiGate SWG an eight out of ten. It has a lower failure rate in terms of configuration. Once it is configured, it keeps running for years. However, they have increased the process by almost 60% to 70%.